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VI. CLAIMS 
What is claimed is: 

1 . A method for issuing a digital certificate for a user on a network, 
comprising the steps of: 

receiving a request for a digital certificate for a user having an electronic 
account, wherein the electronic account is linked to a physical 
address of the user; 

generating, by a certificate authority, the digital certificate for the user, 
wherein the digital certificate includes information enabling 
authentication of a transaction on the network; and 

linking the digital certificate to the electronic account of the user. 

2. The method of claim 1 , further comprising the step of: 

storing a reference to the digital certificate in a certificate directory at the 
certificate authority. 

3. The method of claim 1 , wherein the certificate authority includes a 
proofing server. 



The method of claim 3, wherein the certificate authority further includes a 
proofing workstation. 
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5. The method of claim 1 , wherein the certificate authority is a United States 

Postal Service digital certificate authority. 

6. The method of claim 1 , wherein the digital certificate includes an identifier 
of the user. 

7. The method of claim 1 , wherein the digital certificate includes a certificate 
serial number. 

8. The method of claim 1, wherein the digital certificate includes a certificate 
validity period. 

9. The method of claim 1, wherein the digital certificate includes a proofing 
workstation validation. 

10. The method of claim 1, wherein the digital certificate includes a public key 
for authenticating the digital certificate. 

1 1 . The method of claim 1 , wherein the digital certificate includes an identifier 
of the certificate authority. 
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The method of claim 1, wherein the digital certificate includes a certificate 

status. 

The method of claim 12, wherein the certificate status is set to active. 

The method of claim 12, wherein the certificate status is set to hold. 

The method of claim 12, wherein the certificate status is set to revoked. 

A method for issuing a digital certificate for a user on a network, 
comprising the steps of: 

receiving, at a proofing server, a request for a digital certificate from a 
user with an electronic account, wherein the electronic account is 
linked to a physical address of the user; 

generating, by the proofing server, the digital certificate for the user; 

setting a status of the digital certificate to hold, by the proofing server; 

sending the request for the digital certificate to a proofing workstation; 

verifying, at the proofing workstation, the identity of the user; 

sending an identification verification from the proofing workstation to the 
proofing server, when the identity of the user is verified; 
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setting the status of the digital certificate to active in response to the 

identification verification; and 

storing the digital certificate in the electronic account of the user. 

The method of claim 16, further comprising the step of: 

linking the digital certificate to a transaction on the network by the user, 

wherein the digital certificate can be used to authenticate the 

transaction. 

The method of claim 16, further comprising the step of: 
storing a reference to the digital certificate in a certificate directory at the 
proofing server. 

The method of claim 16, further comprising the step of: 
setting the status of the digital certificate to revoked. 

The method of claim 19, further comprising the step of: 

storing a reference to the digital certificate in a certificate revocation list at 

the proofing server. 

The method of claim 16, further comprising the step of: 
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sending a private key from the proofing workstation to the proofing server, 
when the identity of the user is verified. 



10J 



22. The method of claim 21 , further comprising the step of: 

verifying the private key, by the proofing server, before setting the status 
of the digital certificate to active. 

23. The method of claim 16, wherein the proofing workstation includes a bar 
code scanner. 

24. The method of claim 23, wherein the identification verification is a bar 
code. 



15 



25. The method of claim 16, wherein the proofing workstation includes a 
credit card reader. 



26. The method of claim 16, wherein the proofing workstation includes a 
smart card interface. 
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27. The method of claim 16, wherein the proofing server is a United States 
Postal Service proofing server. 
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The method of claim 16, wherein the proofing workstation is a United 

States Postal Service proofing workstation. 



A method for processing a request for a digital certificate from a user, 
comprising the steps of: 

receiving, at a proofing workstation, user information for a user with an 
electronic account, wherein the electronic account is linked to a 
physical address of the user; 

receiving identification information from the user at the proofing 
workstation; 

matching the user information to the identification information by the 

proofing workstation; and 
sending an identification verification from the proofing workstation to a 

proofing server, when the user information has been matched to 

the identification information. 

The method of claim 29, further comprising the step of : 
receiving payment from the user at the proofing workstation. 

The method of claim 30, wherein the payment is received via credit card. 
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The method of claim 30, wherein the payment is received via Smart Card. 

The method of claim 29, wherein the proofing workstation includes a bar 
code reader. 

The method of claim 33, wherein the identification verification is a bar 
code. 

The method of claim 29, wherein the proofing workstation is a United 
States Postal Service proofing workstation. 

A method for issuing a digital certificate for a user on a network, 
comprising the steps of: 

receiving, at a proofing server, a request for a digital certificate from a 
user with an electronic account, wherein the electronic account is 
linked to a physical address of the user, and wherein the request 
includes user information; 

sending the user information to a proofing workstation via the network; 

generating, by the proofing server, the digital certificate for the user; 

setting a status of the digital certificate to hold, by the proofing server; 
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receiving an identification verification from the proofing workstation when 

the identity of the user has been verified by the proofing 

workstation; 

setting the status of the digital certificate to active in response to the 

identification verification; and 
storing the digital certificate in the electronic account of the user. 

The method of claim 36, further comprising the step of: 
storing a reference to the digital certificate in a certificate directory at the 
proofing server. 

The method of claim 36, further comprising the step of: 
setting the status of the digital certificate to revoked. 

The method of claim 38, further comprising the step of: 
storing a reference to the digital certificate in a certificate revocation list at 
the proofing server. 

The method of claim 36, further comprising the step of: 
receiving a private key from the proofing workstation, when the identity of 
the user is verified. 
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The method of claim 40, further comprising the step of: 

verifying the private key before setting the status of the digital certificate to 

active. 

The method of claim 36, wherein the proofing server is a United States 
Postal Service proofing server. 

A system for issuing a digital certificate for a user on a network, 
comprising: 

a receiving component configured to receive a request for a digital 
certificate for a user having an electronic account, wherein the 
electronic account is linked to a physical address of the user; 

a generating component configured to generate the digital certificate for 
the user, wherein the digital certificate includes information 
enabling authentication of a transaction on the network; and 

a linking component configured to link the digital certificate to the 
electronic account of the user. 

The system of claim 43, further comprising: 

a storing component configured to store a reference to the digital 

certificate in a certificate directory at the generating component. 
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45. The system of claim 43, wherein the generating component includes a 
proofing server. 

46. The system of claim 45, wherein the generating component further 
includes a proofing workstation. 

47. The system of claim 43, wherein the generating component is a United 
States Postal Service digital certificate authority. 

48. The system of claim 43, wherein the digital certificate includes an identifier 
of the user. 

49. The system of claim 43, wherein the digital certificate includes a certificate 
serial number. 

50. The system of claim 43, wherein the digital certificate includes a certificate 
validity period. 

51 . The system of claim 43, wherein the digital certificate includes a proofing 
workstation validation. 
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The system of claim 43, wherein the digital certificate includes a public 
key for authenticating the digital certificate. 
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53. The system of claim 43, wherein the digital certificate includes an identifier 
of the certificate authority. 

54. The system of claim 43, wherein the digital certificate includes a certificate 
status. 

55. The system of claim 54, wherein the certificate status is set to active. 

56. The system of claim 54, wherein the certificate status is set to hold. 

57. The system of claim 54, wherein the certificate status is set to revoked. 

58. A system for issuing a digital certificate for a user on a network, 
comprising: 

a receiving component configured to receive a request for a digital 
certificate from a user with an electronic account, wherein the 
electronic account is linked to a physical address of the user; 
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a generating component configured to generate the digital certificate for 
the user; 

a hold setting component configured to set a status of the digital 

certificate to hold, by the proofing server; 
a request sending component configured to send the request for the 

digital certificate to a proofing workstation; 
a verifying component configured to verify the identity of the user; 
a verification sending component configured to send an identification 

verification from the proofing workstation to the proofing server, 

when the identity of the user is verified; 
an active setting component configured to set the status of the digital 

certificate to active in response to the identification verification; and 
a storing component configured to store the digital certificate in the 

electronic account of the user. 

The system of claim 58, further comprising: 

a linking component configured to link the digital certificate to a 
transaction on the network by the user, wherein the digital 
certificate can be used to authenticate the transaction. 

The system of claim 58, further comprising: 
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a reference storing component configured to store a reference to the 
digital certificate in a certificate directory at the proofing server. 

The system of claim 58, further comprising: 

a revoked setting component configured to set the status of the digital 
certificate to revoked. 

The system of claim 61 , further comprising: 

a revoked storing component configured to store a reference to the digital 
certificate in a certificate revocation list at the proofing server. 

The system of claim 58, further comprising: 

a key sending component configured to send a private key from the 

proofing workstation to the proofing server, when the identity of the 

user is verified. 

The system of claim 63, further comprising: 

a key verifying component configured to verify the private key before 
setting the status of the digital certificate to active. 
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65. The system of claim 58, wherein the proofing workstation includes a bar 

code scanner. 

66. The system of claim 65, wherein the identification verification is a bar 
code. 

67. The system of claim 58, wherein the proofing workstation includes a credit 
card reader. 

68. The system of claim 58, wherein the proofing workstation includes a smart 
card interface. 

69. The system of claim 58, wherein the proofing server is a United States 
Postal Service proofing server. 

70. The system of claim 58, wherein the proofing workstation is a United 
States Postal Service proofing workstation. 

71 . A system for processing a request for a digital certificate from a user, 
comprising: 
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a user information receiving component configured to receive user 

information for a user with an electronic account, wherein the 

electronic account is linked to a physical address of the user; 
an identification receiving component configured to receive identification 

information from the user at the proofing workstation; 
a matching component configured to match the user information to the 

identification information by the proofing workstation; and 
a verification sending component configured to send an identification 

verification from the proofing workstation to a proofing server, when 

the user information has been matched to the identification 

information. 

The system of claim 71 , further comprising: 

a payment receiving component configured to receive payment from the 
user at the proofing workstation. 

The system of claim 72, wherein the payment is received via credit card. 
The system of claim 72, wherein the payment is received via Smart Card. 
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The system of claim 71 , wherein the proofing workstation includes a bar 

code reader. 

The system of claim 75, wherein the identification verification is a bar 
code. 

The system of claim 71, wherein the proofing workstation is a United 
States Postal Service proofing workstation. 

A system for issuing a digital certificate for a user on a network, 
comprising: 

a request receiving component configured to receive a request for a digital 
certificate from a user with an electronic account, wherein the 
electronic account is linked to a physical address of the user, and 
wherein the request includes user information; 

a user information sending component configured to send the user 
information to a proofing workstation via the network; 

a certificate receiving component configured to receive the digital 
certificate for the user; 

a hold setting component configured to set a status of the digital 
certificate to hold, by the proofing server; 
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a verification receiving component configured to receive an identification 

verification from the proofing workstation when the identity of the 

user has been verified by the proofing workstation; 
an active setting component configured to set the status of the digital 

certificate to active in response to the identification verification; and 
a storing component configured to store the digital certificate in the 

electronic account of the user. 

The system of claim 78, further comprising: 

a reference storing component configured to store a reference to the 
digital certificate in a certificate directory at the proofing server. 

The system of claim 78, further comprising: 

a revoked setting component configured to set the status of the digital 
certificate to revoked. 

The system of claim 80, further comprising: 

a revoked storing component configured to store a reference to the digital 
certificate in a certificate revocation list at the proofing server. 

The system of claim 78, further comprising: 
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a key receiving component configured to receive a private key from the 

proofing workstation, when the identity of the user is verified. 
The system of claim 82, further comprising: 

a key verifying component configured to verify the private key before 
setting the status of the digital certificate to active. 

The system of claim 78, wherein the proofing server is a United States 
Postal Service proofing server. 

A computer readable medium having computer readable code embodied 
therein for issuing a digital certificate for a user on a network, the 
computer readable code comprising: 

a receiving module configured to receive a request for a digital certificate 
for a user having an electronic account, wherein the electronic 
account is linked to a physical address of the user; 

a generating module configured to generate the digital certificate for the 
user, wherein the digital certificate includes information enabling 
authentication of a transaction on the network; and 

a linking module configured to link the digital certificate to the electronic 
account of the user. 
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A computer readable medium having computer readable code embodied 

therein for issuing a digital certificate for a user on a network, the 
computer readable code comprising: 

a request receiving module configured to receive a request for a digital 
certificate from a user with an electronic account, wherein the 
electronic account is linked to a physical address of the user; 

a generating module configured to generate the digital certificate for the 
user; 

a hold setting module configured to set a status of the digital certificate to 

hold, by the proofing server; 
a request sending module configured to send the request for the digital 

certificate to a proofing workstation; 
an identity verifying module configured to verify the identity of the user; 
a verification sending module configured to send an identification 

verification from the proofing workstation to the proofing server, 

when the identity of the user is verified; 
an active setting module configured to set the status of the digital 

certificate to active in response to the identification verification; and 
a storing module configured to store the digital certificate in the electronic 

account of the user. 
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A computer readable medium having computer readable code embodied 

therein for processing a request for a digital certificate from a user, the 

computer readable code comprising: 

an information receiving module configured to receive user information for 
a user with an electronic account, wherein the electronic account is 
linked to a physical address of the user; 

an identification receiving module configured to receive identification 
information from the user at the proofing workstation; 

a matching module configured to match the user information to the 
identification information by the proofing workstation; and 

a sending module configured to send an identification verification from the 
proofing workstation to a proofing server, when the user 
information has been matched to the identification information. 

A computer readable medium having computer readable code embodied 
therein for issuing a digital certificate for a user on a network, the 
computer readable code comprising: 

a request receiving module configured to receive a request for a digital 
certificate from a user with an electronic account, wherein the 
electronic account is linked to a physical address of the user, and 
wherein the request includes user information; 

-71 - 



Attorney Docket No. 08049-0002 
a sending module configured to send the user information to a proofing 

workstation via the network; 

a generating module configured to generate the digital certificate for the 

user; 

a hold setting module configured to set a status of the digital certificate to 

hold, by the proofing server; 
a verification receiving module configured to receive an identification 

verification from the proofing workstation when the identity of the 

user has been verified by the proofing workstation; 
an active setting module configured to set the status of the digital 

certificate to active in response to the identification verification; and 
a storing module configured to store the digital certificate in the electronic 

account of the user. 

A system for issuing a digital certificate for a user on a network, 
comprising: 

means for receiving a request for a digital certificate for a user having an 
electronic account, wherein the electronic account is linked to a 
physical address of the user; 
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means for generating, by a certificate authority, the digital certificate for 

the user, wherein the digital certificate includes information 

enabling authentication of a transaction on the network; and 

means for linking the digital certificate to the electronic account of the 

user. 



A system for issuing a digital certificate for a user on a network, 
comprising: 

means for receiving, at a proofing server, a request for a digital certificate 
from a user with an electronic account, wherein the electronic 
account is linked to a physical address of the user; 

means for generating, by the proofing server, the digital certificate for the 
user; 

means for setting a status of the digital certificate to hold, by the proofing 
server; 

means for sending the request for the digital certificate to a proofing 
workstation; 

means for verifying, at the proofing workstation, the identity of the user; 
means for sending an identification verification from the proofing 

workstation to the proofing server, when the identity of the user is 

verified; 
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means for setting the status of the digital certificate to active in response 

to the identification verification; and 
means for storing the digital certificate in the electronic account of the 
user. 

A system for processing a request for a digital certificate from a user, 
comprising: 

means for receiving, at a proofing workstation, user information for a user 
with an electronic account, wherein the electronic account is linked 
to a physical address of the user; 

means for receiving identification information from the user at the proofing 
workstation; 

means for matching the user information to the identification information 

by the proofing workstation; and 
means for sending an identification verification from the proofing 

workstation to a proofing server, when the user information has 

been matched to the identification information. 

A system for issuing a digital certificate for a user on a network, 
comprising: 
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means for receiving, at a proofing server, a request for a digital certificate 

from a user with an electronic account, wherein the electronic 
account is linked to a physical address of the user, and wherein the 
request includes user information; 
means for sending the user information to a proofing workstation via the 
network; 

means for generating, by the proofing server, the digital certificate for the 
user; 

means for setting a status of the digital certificate to hold, by the proofing 
server; 

means for receiving an identification verification from the proofing 

workstation when the identity of the user has been verified by the 

proofing workstation; 
means for setting the status of the digital certificate to active in response 

to the identification verification; and 
means for storing the digital certificate in the electronic account of the 

user. 
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